Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1029
Views
0
Helpful
5
Replies

Cisco FMC/FTD 7.x -> Can you build rules using mac addresses?

mik31
Level 1
Level 1

‎04-06-2022 06:14 AM - edited ‎04-06-2022 06:15 AM

 
We recently updated FMC and our FTD's to code 7.x.
 

Are we able to build rules using MAC addresses yet?

1 person had this problem
0 Helpful
5 Replies 5

balaji.bandi
Hall of Fame
Hall of Fame

‎04-06-2022 06:23 AM 

Are we able to build rules using MAC addresses yet?

have upgrade to latest due to this ?

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

mik31
Level 1
Level 1
In response to balaji.bandi

‎04-06-2022 06:27 AM

Sorry? We upgraded for other reasons.

 

This is more of a question, is it possible now?

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to mik31

‎04-06-2022 08:36 AM 

Are we able to build rules using MAC addresses yet?

if you looking to Build ACP rules using MAC address - unfortunatly never done myself ?

I never heard that, how FW know the MAC address of end device ?

 

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎04-06-2022 08:46 AM

No. You need to use Layer 3 and above in your rules (protocol, IP address, etc.).

Most often the client is not on the same subnet as the firewall's interface so the MAC address would not be known in that case.

0 Helpful

Marius Gunnerud
VIP
VIP

‎04-06-2022 10:47 AM

If you are looking to create access rules based on MAC then best to look into ISE or similar product

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card